By 'some old security problems with that' I was not sure if you meant
with the OpenSSH for Solaris or the SSH Secure Shell 2.2.0 from www.ssh.com
. However, either way I can easily update, as it's my own
computer for which I have root access.
If at all possible, I'd rather just use the OpenSSH that came with
Solaris (if necessary with security updates). I'm not aware of any
security patches from Sun related to their OpenSSH implementation.
Since I don't use it for commercial use, I can easily update the
non-commercial release from www.ssh.com. However, I'm a bit reluctant to
update this, since at least both the University and I have the same
version. We currently have two different versions, I don't want to make
the problem worst by having 3 versions on two machines!
> > 2) A computer at the university that runs the SSH Secure Shell 2.2.0
> > from www.ssh.com
> *UPDATE THIS RIGHT NOW*. Again, old security problems.
I don't have root privileges on those machines and somehow don't think
I'll get it changed. Hence I'd rather configure the home machine to fit
in with those at the university.
Thanks, that is useful to know. I wish it would be more helpful with a
message such as 'ssh access to localhost is disabled - see sshd_config'
rather than to repeatedly ask for the root password.
> > Any comments?? Suggestions? One option I have is to use the ssh server
> > at home from www.ssh.com
, but I'd rather use open tools if possible.
> > The version from www.ssh.com
I have is rather old and perhaps udating
> > it will bring me more problems!
> Update. It's pretty easy to do, and will make your life considerably.
> Updating to OpenSSH will also, I think, be more secure and mean you only
> have to have one daemon installed, not one for SSH1 and another for SSH2
> that summons the SSH1 daemon as needed....
Updating OpenSSH at home is easy. I'm already using OpenSSH for incoming
connections, but I can't update the distant machine.
If this message was sent to a newsgroup or mailing list, please
reply to there. Personal e-mail is always welcome, but unless
I have received e-mail from you previously, you may be sent
an automatically generated reply, requesting that you send the
message again, adding a password in the subject line. Sorry,
but this action has been taken to prevent unsolicited
commercial emails (spam mail).
Dr. David Kirkby PhD,
Senior Research Fellow,
Department of Medical Physics,
University College London,
11-20 Capper St, London, WC1E 6JA.
Tel: 020 7679 6408 Fax: 020 7679 6269
Internal telephone: ext 46408
Web page: http://www.medphys.ucl.ac.uk/~davek